Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS27347.roa
File: AS27347.roa (raw, json)
Hash identifier: sC13Y8WLQBh4UT43JXjrM0JfTRlDuZn0LZLAJ0qwUdA=
Subject key identifier: 48:3B:02:9B:14:0E:BA:D5:5C:96:9E:3B:5A:07:D6:14:6B:DC:8F:78
Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C
Certificate serial: 1D243791FD039E846E4060D6DA53BA6202B6AD5B
Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS27347.roa
Signing time: Mon 17 Feb 2025 22:53:55 +0000
ROA not before: Mon 17 Feb 2025 22:48:55 +0000
ROA not after: Mon 16 Feb 2026 22:53:55 +0000
asID: 27347
IP address blocks: 89.116.108.0/24 maxlen: 24
Validation: OK
Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 11 Apr 2025 08:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:24:37:91:fd:03:9e:84:6e:40:60:d6:da:53:ba:62:02:b6:ad:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C
Validity
Not Before: Feb 17 22:48:55 2025 GMT
Not After : Feb 16 22:53:55 2026 GMT
Subject: CN=483B029B140EBAD55C969E3B5A07D6146BDC8F78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:7a:8b:74:98:35:d4:21:38:5c:7c:4b:97:08:
5a:59:fb:f2:2d:df:0d:27:10:98:95:13:c0:02:00:
ce:f7:29:38:85:fa:f6:35:e5:05:c4:1d:e5:1c:78:
75:d4:a3:46:7e:e1:3b:f6:d1:c6:64:0a:ca:ed:85:
b7:17:a0:f7:7c:07:c2:b8:81:00:18:29:52:72:e4:
fe:14:e0:37:e6:26:d6:b7:e1:4f:ed:46:34:8b:8c:
e3:41:f1:e7:0a:06:d4:6b:86:85:57:77:ec:43:ce:
da:a8:29:70:7f:a7:0f:50:f2:15:fc:0e:75:8d:2e:
c1:3f:22:84:b8:60:1a:6b:23:40:2d:e6:30:5a:4d:
9c:72:58:09:18:c1:f4:78:6d:82:40:43:e4:00:c3:
a4:7e:e4:16:67:22:63:c8:ba:ca:d1:e4:79:f0:3c:
21:e1:e9:98:8b:f9:68:d2:2b:d8:6f:3f:72:ba:b3:
e9:90:e3:91:c1:7e:c4:c6:8e:3c:58:c4:32:90:3e:
4e:16:ab:92:97:ba:1a:d6:71:5b:4f:a9:ff:ca:b4:
9c:fa:cd:3f:37:27:2e:85:a6:8d:79:ee:22:a8:96:
53:45:c8:e0:64:ee:80:16:df:ec:66:1c:46:1b:1e:
3a:9d:3e:e2:f8:00:aa:cc:bc:74:51:51:39:58:18:
df:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:3B:02:9B:14:0E:BA:D5:5C:96:9E:3B:5A:07:D6:14:6B:DC:8F:78
X509v3 Authority Key Identifier:
keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS27347.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.116.108.0/24
Signature Algorithm: sha256WithRSAEncryption
09:d5:cd:80:67:e3:5d:24:5a:4e:de:72:64:79:9a:13:c6:55:
49:40:ae:f8:9e:bc:53:c8:08:eb:e1:16:14:b7:ed:41:eb:55:
d7:a2:8b:dd:4a:9b:ed:f8:50:c5:e7:44:e2:a9:95:c4:63:5a:
30:80:ce:1c:a4:25:93:03:d3:57:14:3a:f1:54:df:98:fa:6a:
af:48:0d:7a:b4:8f:fc:50:bc:27:d2:43:3a:72:f3:fa:5e:91:
96:1f:37:8f:e8:1a:e7:66:38:f4:05:03:9a:86:a2:f2:0b:f1:
57:4c:09:d4:75:43:e5:da:2a:1f:5a:99:21:90:ca:5b:a8:0a:
9e:05:30:1e:c7:44:9e:ef:9e:be:ad:f1:dc:a9:13:3b:5a:5f:
52:0e:35:14:7c:6a:49:8a:43:9a:be:9d:33:ac:25:16:14:b5:
df:d9:97:7a:7b:99:39:64:6b:41:4c:4c:c0:e4:16:ed:0e:e2:
11:e9:b2:66:35:9f:61:0d:b9:6c:de:d1:a2:ba:23:08:f2:66:
1c:5a:02:81:48:b5:12:44:f4:4a:59:71:8d:99:60:f7:85:5d:
a0:5a:74:64:fa:6b:e2:03:dd:34:d3:4e:88:49:b7:d9:cd:06:
e7:d6:7a:f1:14:a5:50:8d:e8:75:bd:4e:69:04:94:df:f4:32:
69:57:c0:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 12:34:34 2025 by rpki-client